Write terms of service and privacy policy for Google account usage
As per new Google policy, we need a terms of service document and a privacy policy to present to users when they authenticate with their Google account through GOA (on Google’s OAuth authentication page).
GNOME has a privacy policy, but it’s targeted at Foundation members and users of the website, rather than anything to do with GOA or Google account integration.
Are we going to want a separate privacy policy for each application which uses GOA credentials? I am concerned that Google would want each application to use a different API key so that the API scope of each key is minimised and the privacy policy for each is kept as specific as possible. That’s a lot of work, which would be good to avoid if possible. (We know our apps are good with people’s data and privacy; we just need to convince Google of that.)
Once this is done, we need to move on to #42 (closed).
See also: Infrastructure/Infrastructure#80 (closed)
Deadline: before 2019-02-14